Fedora 15 updates-testing report

Sat Feb 4 23:53:02 UTC 2012

The following Fedora 15 Security updates need testing:

    https://admin.fedoraproject.org/updates/FEDORA-2012-1077/wicd-1.7.0-11.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0888/curl-7.21.3-13.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0917/znc-0.204-3.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1147/perl-Gtk2-MozEmbed-0.09-1.fc15.9,gnome-python2-extras-2.25.3-35.fc15.5,thunderbird-lightning-1.2-1.fc15,thunderbird-10.0-1.fc15,firefox-10.0-1.fc15,xulrunner-10.0-1.fc15,gstreamer-plugins-bad-free-0.10.22-1.fc15.1,libvpx-1.0.0-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1189/bugzilla-3.6.8-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1207/pdns-2.9.22.6-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1213/usbmuxd-1.0.7-3.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1283/drupal6-6.24-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0987/mysql-5.5.20-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0752/jetty-6.1.26-7.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1267/phpldapadmin-1.2.2-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1250/drupal7-7.12-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1301/php-5.3.10-1.fc15,php-eaccelerator-0.9.6.1-9.fc15.2,maniadrive-1.2-32.fc15.2
    https://admin.fedoraproject.org/updates/FEDORA-2012-1066/ettercap-0.7.4-3.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1325/xchat-ruby-1.2-11.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2011-17233/tor-0.2.1.32-1500.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2011-16980/asterisk-1.8.7.2-1.fc15

The following Fedora 15 Critical Path updates have yet to be approved:

    https://admin.fedoraproject.org/updates/FEDORA-2012-1281/kernel-2.6.42.3-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1257/systemtap-1.7-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1213/usbmuxd-1.0.7-3.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1122/pam-1.1.5-5.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1068/systemd-26-16.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1070/krb5-1.9.2-6.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1085/gnupg-1.4.12-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0987/mysql-5.5.20-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0997/rsyslog-5.8.7-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0929/rpm-4.9.1.2-3.fc15.3
    https://admin.fedoraproject.org/updates/FEDORA-2012-0943/system-config-printer-1.3.8-2.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2011-13190/phonon-backend-gstreamer-4.5.90-2.fc15,phonon-4.5.57-1.20110914.fc15

The following builds have been pushed to Fedora 15 updates-testing

    389-admin-1.1.27-1.fc15
    389-adminutil-1.1.15-1.fc15
    389-ds-base-1.2.10-0.10.rc1.fc15
    389-dsgw-1.1.9-1.fc15
    clamtk-4.37-1.fc15
    fcitx-4.2.0-1.fc15
    maniadrive-1.2-32.fc15.2
    nickle-2.72-1.fc15
    perl-CPAN-Meta-2.120351-1.fc15
    php-5.3.10-1.fc15
    php-eaccelerator-0.9.6.1-9.fc15.2
    python-anfft-0.1-3.fc15
    taglib-1.7-3.fc15
    wine-1.4-0.2.rc2.fc15
    xchat-ruby-1.2-11.fc15

Details about builds:

================================================================================
 389-admin-1.1.27-1.fc15 (FEDORA-2012-1323)
 389 Administration Server (admin)
--------------------------------------------------------------------------------
Update Information:

TLS not working with latest openldap - Review and address latest Coverity issues
selinux: need to allow admin server to connect to ldap port
389-console put CA certificates into wrong database
--------------------------------------------------------------------------------
ChangeLog:

* Fri Feb  3 2012 Rich Megginson <rmeggins at redhat.com> - 1.1.27-1
- Ticket #281 - TLS not working with latest openldap
- Ticket #161 - Review and address latest Coverity issues
* Wed Jan 25 2012 Rich Megginson <rmeggins at redhat.com> - 1.1.26-1
- Bug 767823 - selinux: need to allow admin server to connect to ldap port
* Fri Oct 28 2011 Rich Megginson <rmeggins at redhat.com> - 1.1.25-1
- Bug 740959 - 389-console put CA certificates into wrong database
* Wed Sep 21 2011 Rich Megginson <rmeggins at redhat.com> - 1.1.24-1
- Bug 695741 - Providing native systemd file
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #767823 - selinux: need to allow admin server to connect to ldap port
        https://bugzilla.redhat.com/show_bug.cgi?id=767823
  [ 2 ] Bug #740959 - 389-console put CA certificates into wrong database
        https://bugzilla.redhat.com/show_bug.cgi?id=740959
--------------------------------------------------------------------------------

================================================================================
 389-adminutil-1.1.15-1.fc15 (FEDORA-2012-1313)
 Utility library for 389 administration
--------------------------------------------------------------------------------
Update Information:

Fix TLS connections with newer openldap
--------------------------------------------------------------------------------
ChangeLog:

* Fri Feb  3 2012 Rich Megginson <rmeggins at redhat.com> - 1.1.15-1
- Ticket #281 - TLS not working with latest openldap
- Ticket #161 - Review and address latest Coverity issues
--------------------------------------------------------------------------------

================================================================================
 389-ds-base-1.2.10-0.10.rc1.fc15 (FEDORA-2012-1330)
 389 Directory Server (base)
--------------------------------------------------------------------------------
Update Information:

coverity fixes - valgrind issues - schema repl - ruv tombstone - nsMatchingRule - account policy fixes - entryrdn improvements
Ticket #272 - add tombstonenumsubordinates to schema
the 389-ds-base 1.2.10.a7 release - several bug fixes - fixes for systemd
--------------------------------------------------------------------------------
ChangeLog:

* Thu Feb  2 2012 Rich Megginson <rmeggins at redhat.com> - 1.2.10-0.10.rc1
- ad9dd30 coverity 12488 Resource leak In attr_index_config(): Leak of memory or pointers to system resources
- Ticket #281 - TLS not working with latest openldap
- Ticket #280 - extensible binary filters do not work
- Ticket #279 - filter normalization does not use matching rules
- Trac Ticket #275 - Invalid read reported by valgrind
- Ticket #277 - cannot set repl referrals or state
- Ticket #278 - Schema replication update failed: Invalid syntax
- Ticket #39 - Account Policy Plugin does not work for simple binds when PAM Pass Through Auth plugin is enabled
- Ticket #13 - slapd process exits when put the database on read only mode while updates are coming to the server
- Ticket #87 - Manpages fixes
- c493fb4 fix a couple of minor coverity issues
- Ticket #55 - Limit of 1024 characters for nsMatchingRule
- Trac Ticket #274 - Reindexing entryrdn fails if ancestors are also tombstoned
- Ticket #6 - protocol error from proxied auth operation
- Ticket #38 - nisDomain schema is incorrect
- Ticket #273 - ruv tombstone searches don't work after reindex entryrdn
- Ticket #29 - Samba3-schema is missing sambaTrustedDomainPassword
- Ticket #22 - RFE: Support sendmail LDAP routing schema
- Ticket #161 - Review and address latest Coverity issues
- Ticket #140 - incorrect memset parameters
- Trac Ticket 35 - Log not clear enough on schema errors
- Trac Ticket 139 - eliminate the use of char *dn in favor of Slapi_DN *dn
- Trac Ticket #52 - FQDN set to nsslapd-listenhost makes the server start fail if IPv4-mapped-IPv6 address is given
* Tue Jan 24 2012 Rich Megginson <rmeggins at redhat.com> - 1.2.10-0.9.a8
- Ticket #272 - add tombstonenumsubordinates to schema
* Mon Jan 23 2012 Rich Megginson <rmeggins at redhat.com> - 1.2.10-0.8.a7
- fixes for systemd - remove .pid files after shutting down servers
- Ticket #263 - add systemd include directive
- Ticket #264 - upgrade needs better check for "server is running"
* Fri Jan 20 2012 Rich Megginson <rmeggins at redhat.com> - 1.2.10-0.7.a7
- Ticket #262 - pid file not removed with systemd
- Ticket #50 - server should not call a plugin after the plugin close function is called
- Ticket #18 - Data inconsitency during replication
- Ticket #49 - better handling for server shutdown while long running tasks are active
- Ticket #15 - Get rid of rwlock.h/rwlock.c and just use slapi_rwlock instead
- Ticket #257 - repl-monitor doesn't work if leftmost hostnames are the same
- Ticket #12 - 389 DS DNA Plugin / Replication failing on GSSAPI
- 6aaeb77 add a hack to disable sasl hostname canonicalization
- Ticket 168 - minssf should not apply to rootdse
- Ticket #177 - logconv.pl doesn't detect restarts
- Ticket #159 - Managed Entry Plugin runs against managed entries upon any update without validating
- Ticket 75 - Unconfigure plugin opperations are being called.
- Ticket 26 - Please support setting defaultNamingContext in the rootdse.
- Ticket #71 - unable to delete managed entry config
- Ticket #167 - Mixing transaction and non-transaction plugins can cause deadlock
- Ticket #256 - debug build assertion in ACL_EvalDestroy()
- Ticket #4 - bak2db gets stuck in infinite loop
- Ticket #162 - Infinite loop / spin inside strcmpi_fast, acl_read_access_allowed_on_attr, server DoS
- Ticket #3: acl cache overflown problem
- Ticket 1 - pre-normalize filter and pre-compile substring regex - and other optimizations
- Ticket 2 - If node entries are tombstone'd, subordinate entries fail to get the full DN.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #759183 - Mixing transaction and non-transaction plugins can cause deadlock
        https://bugzilla.redhat.com/show_bug.cgi?id=759183
--------------------------------------------------------------------------------

================================================================================
 389-dsgw-1.1.9-1.fc15 (FEDORA-2012-1318)
 389 Directory Server Gateway (dsgw)
--------------------------------------------------------------------------------
Update Information:

TLS broken with latest openldap
support tmpfiles.d - do not link with ldap_r
--------------------------------------------------------------------------------
ChangeLog:

* Fri Feb  3 2012 Rich Megginson <rmeggins at redhat.com> - 1.1.9-1
- Ticket #281 - TLS not working with latest openldap
* Wed Dec 14 2011 Rich Megginson <rmeggins at redhat.com> - 1.1.8-1
- add support for tmpfiles.d
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #766986 - add tmpfiles.d support for dsgw
        https://bugzilla.redhat.com/show_bug.cgi?id=766986
  [ 2 ] Bug #755725 - 389 programs linked against openldap crash during shutdown
        https://bugzilla.redhat.com/show_bug.cgi?id=755725
--------------------------------------------------------------------------------

================================================================================
 clamtk-4.37-1.fc15 (FEDORA-2012-1327)
 Easy to use graphical user interface for Clam anti virus
--------------------------------------------------------------------------------
Update Information:

Update to 4.37.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Feb  4 2012 Dave M. <dave.nerd at gmail.com> - 4.37-1
- Updated to release 4.37.
* Thu Jan 12 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 4.36-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------

================================================================================
 fcitx-4.2.0-1.fc15 (FEDORA-2012-1320)
 Free Chinese Input Toy for X (XIM)
--------------------------------------------------------------------------------
Update Information:

Bump into Fcitx-4.2.0
--------------------------------------------------------------------------------
ChangeLog:

* Sat Feb  4 2012 Liang Suilong <liangsuilong at gmail.com> - 4.2.0-1
- Upgrade to fcitx-4.2.0
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 4.1.2-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------

================================================================================
 maniadrive-1.2-32.fc15.2 (FEDORA-2012-1301)
 3D stunt driving game
--------------------------------------------------------------------------------
Update Information:

This update contains the latest release of PHP, 5.3.10, which fixes a security issue.

A security fix introduced in PHP 5.3.9 allowed a remote user to crash the PHP interpreter, or possibly, execute arbitrary code. (CVE-2012-0830)
--------------------------------------------------------------------------------
ChangeLog:

* Sat Feb  4 2012 Remi Collet <remi at fedoraproject.org> - 1.2-32.2
- rebuild against PHP 5.3.10
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #786686 - CVE-2012-0830 php: remote code exec flaw introduced in the CVE-2011-4885 hashdos fix
        https://bugzilla.redhat.com/show_bug.cgi?id=786686
--------------------------------------------------------------------------------

================================================================================
 nickle-2.72-1.fc15 (FEDORA-2012-1324)
 A programming language-based prototyping environment
--------------------------------------------------------------------------------
Update Information:

Latest upstream release
--------------------------------------------------------------------------------
ChangeLog:

* Sat Feb  4 2012 Michel Salim <salimma at fedoraproject.org> - 2.72-1
- Update to 2.72
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #787360 - nickle-2.72 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=787360
--------------------------------------------------------------------------------

================================================================================
 perl-CPAN-Meta-2.120351-1.fc15 (FEDORA-2012-1326)
 Distribution metadata for a CPAN dist
--------------------------------------------------------------------------------
Update Information:

This update works around a memory leak bug involving version objects in boolean context.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Feb  4 2012 Iain Arnell <iarnell at gmail.com> 2.120351-1
- update to latest upstream version
* Sun Jan 22 2012 Iain Arnell <iarnell at gmail.com> 2.113640-3
- drop tests subpackage; move tests to main package documentation
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.113640-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Jan  3 2012 Marcela Mašláňová <mmaslano at redhat.com> 2.113640-1
- update to latest version, which deprecated Version::Requirements
* Fri Sep 23 2011 Iain Arnell <iarnell at gmail.com> 2.112621-1
- update to latest upstream version
- clean up spec for modern rpmbuild
--------------------------------------------------------------------------------

================================================================================
 php-5.3.10-1.fc15 (FEDORA-2012-1301)
 PHP scripting language for creating dynamic web sites
--------------------------------------------------------------------------------
Update Information:

This update contains the latest release of PHP, 5.3.10, which fixes a security issue.

A security fix introduced in PHP 5.3.9 allowed a remote user to crash the PHP interpreter, or possibly, execute arbitrary code. (CVE-2012-0830)
--------------------------------------------------------------------------------
ChangeLog:

* Thu Feb  2 2012 Joe Orton <jorton at redhat.com> - 5.3.10-1
- update to 5.3.10
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #786686 - CVE-2012-0830 php: remote code exec flaw introduced in the CVE-2011-4885 hashdos fix
        https://bugzilla.redhat.com/show_bug.cgi?id=786686
--------------------------------------------------------------------------------

================================================================================
 php-eaccelerator-0.9.6.1-9.fc15.2 (FEDORA-2012-1301)
 PHP accelerator, optimizer, encoder and dynamic content cacher
--------------------------------------------------------------------------------
Update Information:

This update contains the latest release of PHP, 5.3.10, which fixes a security issue.

A security fix introduced in PHP 5.3.9 allowed a remote user to crash the PHP interpreter, or possibly, execute arbitrary code. (CVE-2012-0830)
--------------------------------------------------------------------------------
ChangeLog:

* Sat Feb  4 2012 Remi Collet <remi at fedoraproject.org> - 1:0.9.6.1-9.2
- rebuild against PHP 5.3.10
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #786686 - CVE-2012-0830 php: remote code exec flaw introduced in the CVE-2011-4885 hashdos fix
        https://bugzilla.redhat.com/show_bug.cgi?id=786686
--------------------------------------------------------------------------------

================================================================================
 python-anfft-0.1-3.fc15 (FEDORA-2012-1332)
 ANFFT is an FFT package for Python, based on FFTW
--------------------------------------------------------------------------------
Update Information:

- New package python-anftt, a wrapper of FFTW for Python.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #772499 - Review Request: python-anfft - ANFFT is an FFT package for Python, based on FFTW
        https://bugzilla.redhat.com/show_bug.cgi?id=772499
--------------------------------------------------------------------------------

================================================================================
 taglib-1.7-3.fc15 (FEDORA-2012-1329)
 Audio Meta-Data Library
--------------------------------------------------------------------------------
Update Information:

Bugfix: crash parsing ID3v2 tag in ape file due to null pointer dereference 
--------------------------------------------------------------------------------
ChangeLog:

* Sat Feb  4 2012 Orcan Ogetbil <oget[dot]fedora[at]gmail[dot]com> - 1.7-3
- Backported fix for a crash in .ape file parsing RHBZ#700727
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.7-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #700727 - [abrt] clementine-0.7.1-1.fc14: Process /usr/bin/clementine was killed by signal 11 (SIGSEGV)
        https://bugzilla.redhat.com/show_bug.cgi?id=700727
--------------------------------------------------------------------------------

================================================================================
 wine-1.4-0.2.rc2.fc15 (FEDORA-2012-1012)
 A Windows 16/32/64 bit emulator
--------------------------------------------------------------------------------
Update Information:

 * Improved crash dialog with support for saving the backtrace.
 * Support for the Back button in built-in Internet Explorer.
 * Keyboard accelerators can now be translated through po files.
 * A number of installer fixes.
 * Many translation updates and tweaks.
 * Various bug fixes.

--------------------------------------------------------------------------------
ChangeLog:

* Thu Feb  2 2012 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 1.4-0.2.rc2
- version upgrade
* Sat Jan 28 2012 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 1.4-0.1.rc1
- version upgrade
* Wed Jan 25 2012 Peter Robinson <pbrobinson at fedoraproject.org> - 1.3.37-2
- Add initial support for wine on ARM
--------------------------------------------------------------------------------

================================================================================
 xchat-ruby-1.2-11.fc15 (FEDORA-2012-1325)
 An X-Chat plugin providing scripting functionality with Ruby
--------------------------------------------------------------------------------
Update Information:

Fixes a remote-triggerable null pointer dereference (occurs under certain conditions; see the bug for more details).
--------------------------------------------------------------------------------
ChangeLog:

* Fri Feb  3 2012 Conrad Meyer <konrad at tylerc.org> - 1.2-11
- Fix null pointer dereference (#787298 reported by Pallai Roland)
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.2-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #787298 - null pointer dereference, remote DoS
        https://bugzilla.redhat.com/show_bug.cgi?id=787298
--------------------------------------------------------------------------------